top of page

Privacy Statement

 

Introduction

Perimatics is a healthcare technology solutions business. We understand the sensitive nature of data in the healthcare space and commit to the greatest possible protection of this data. This Privacy Notice describes Perimatics policies and practices regarding its collection and use of your personal data and sets forth your privacy rights. We recognize that information privacy is an ongoing responsibility, and so we will from time to time update this Privacy Notice as we undertake new data practices or adopt new privacy policies.

 

Data Protection Officer

Perimatics is headquartered in Bellevue in the United States. Perimatics has appointed an internal data protection officer for you to contact if you have any questions or concerns about Perimatics’ personal data policies or practices. If you would like to exercise your privacy rights, please direct your query to Perimatics’ data protection officer. Perimatics’ data protection officer’s name and contact information are as follows:

Nishant Velagapudi

Perimatics

13701 NE Bel Red Rd #103 Bellevue WA 98005

nishant@perimatics.com

(425) 298-0956

 

How we collect and use (process) your personal information

Perimatics collects information from healthcare enterprises. Sensitive information collected is restricted as per the products/scenarios provided to the required minimum. Elements that may be used include:

  • name

  • address

  • email

  • phone number

​

We use this information as part of our solutions in a minimum required and explicitly defined capacity.

​

We do not sell personal information to anyone and do not share information with third parties outside of specifically directed uses by clients.

 

Use of the Perimatics Website

The Perimatics’ website collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location where your computer or device is accessing the internet, browser type, operating system and other usage information about the use of Perimatics website, including a history of the pages you view. We use this information to help us design our site to better suit our users’ needs. We may also use your IP address to help diagnose problems with our site and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.

Perimatics has a legitimate interest in understanding how members, customers and potential customers use its website. This assists Perimatics with providing more relevant products and services, with communicating value to our sponsors and corporate members, and with providing appropriate staffing to meet member and customer needs.

 

Cookies and tracking technologies
Perimatics uses cookies on the company website to track interactions with it and to track patterns within. The company website allows users to accept or decline cookie usage. By accepting use of cookies, users agree to our use of cookies for these purposes.

 

Sharing information with third parties

The information Perimatics collects is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval.

A list of our third party sub processors: Microsoft Azure (including Azure native services such as Application Insights).

We do not otherwise reveal personal data to non-Perimatics persons or businesses for their independent use unless: (1) you request or authorize it; (2) it’s in connection with Perimatics-hosted and Perimatics co-sponsored conferences as described above; (3) the information is provided to comply with the law (for example, compelled by law enforcement to comply with a search warrant, subpoena, or court order), enforce an agreement we have with you, or to protect our rights, property or safety, or the rights, property or safety of our employees or others; (4) the information is provided to our agents, vendors or service providers who perform functions on our behalf; (5) to address emergencies or acts of God; or (6) to address disputes, claims, or to persons demonstrating legal authority to act on your behalf. We may also gather aggregated data about our services and website visitors and disclose the results of such aggregated (but not personally identifiable) information to our partners, service providers, advertisers, and/or other third parties for marketing or promotional purposes.

 

Transferring personal data to the U.S.

Perimatics is headquartered in the United States and provides healthcare technology services to hospitals and healthcare systems. While providing these services, Perimatics may process personal or health information on behalf of its clients. This information is stored and processed in the United States using secure, HIPAA-aligned infrastructure hosted on Microsoft Azure.

If you are an individual whose data is processed by Perimatics, it is likely because a hospital or healthcare provider with whom you have a relationship uses our services. Perimatics does not provide services directly to individuals, and we do not collect personal data from individuals outside of our role as a service provider to healthcare institutions.

The United States has not sought nor received a finding of “adequacy” from the European Union under Article 45 of the GDPR. Pursuant to Article 46 of the GDPR, Perimatics enters into Standard Contractual Clauses (SCCs) with its clients and sub-processors, ensuring appropriate safeguards for personal data transferred from the EEA or UK. These SCCs are updated in accordance with guidance from the European Data Protection Board.

Perimatics implements appropriate technical and organizational measures to protect personal and sensitive health information, in line with contractual and regulatory obligations including HIPAA. Our only sub-processor is Microsoft Azure, which processes data solely within HIPAA-compliant services under Microsoft’s Business Associate Agreement (BAA).

For more information or if you have any questions, please contact us at security@perimatics.com

 

Data Subject rights

The European Union’s General Data Protection Regulation (GDPR) and other countries’ privacy laws provide certain rights for data subjects. Data Subject rights under GDPR include the following:

  • Right to be informed

  • Right of access

  • Right to rectification

  • Right to erasure

  • Right to restrict processing

  • Right of data portability

  • Right to object

  • Rights related to automated decision making including profiling

 

Because Perimatics provides services to hospitals and healthcare organizations, we generally act as a data processor, processing personal data on behalf of those institutions (the data controllers). If your personal data has been processed by Perimatics as part of a service provided to a hospital or healthcare provider, and you wish to exercise your rights under the GDPR or other applicable laws, we recommend contacting your healthcare provider directly. We will, however, cooperate with our clients to support them in responding to such requests in accordance with applicable law.

This Privacy Notice is intended to provide information about the personal data Perimatics may process and how it is used in the context of our services. If you believe Perimatics may be processing your data and you would like to:

  • Confirm the processing of your personal data

  • Request access to the data

  • Inquire about the purpose, categories, sources, or recipients of that data

  • Request correction, deletion, or restriction of your personal data

  • Request data portability (where applicable)

  • Raise a concern or complaint

You may contact us at security@perimatics.com, and we will work with the appropriate data controller to address your inquiry.

Reasonable access to your personal data will be provided at no cost where required by law. If access cannot be provided promptly, we will inform you of the expected timeline. If access is denied, we will explain the reason as permitted by law.

If you are located in the European Union or United Kingdom, and have concerns about the handling of your personal data, you also have the right to lodge a complaint with your local Data Protection Authority.

 

Data storage and retention

Your personal data is stored by Perimatics on secure servers located in the United States, including servers managed by Microsoft Azure, our trusted cloud services provider. These systems are designed with enterprise-grade security controls to protect the confidentiality, integrity, and availability of data.

Perimatics retains service-related data for the duration of the customer’s business relationship with us, and for a limited period thereafter, as necessary to support business operations, conduct historical analyses, maintain system backups, and meet legal or contractual obligations.

​

We retain contact and prospect data until it no longer serves a legitimate business purpose and is securely deleted.

Where Perimatics acts as a data processor (e.g., handling data on behalf of a hospital or healthcare organization), requests to delete or access personal data should typically be directed to the data controller (the healthcare provider). However, we honor verified requests for deletion, access, or portability of personal data where applicable and in coordination with our clients.

For more information on where and how long your data is stored, or to request erasure or data portability, please contact us at security@perimatics.com.

 

Children’s data

Perimatics may process personal information related to children when such data is included in the records shared by our hospital and healthcare organization clients. This typically occurs as part of our services that support clinical operations, analytics, or billing workflows.

​

Perimatics does not collect personal data directly from children, nor do we offer services directed to children. Any processing of children’s data is done strictly on behalf of and under the direction of the healthcare provider, who serves as the data controller.

We handle all personal data — including that of minors — in accordance with applicable privacy laws and industry best practices, applying the same high standards of protection and security. We do not use children’s data for marketing or advertising purposes.

If you are a parent or legal guardian and have questions or concerns about how your child’s data may be processed through our services, we encourage you to contact the healthcare provider directly. You may also reach us at security@perimatics.com for additional information or assistance.

​

Questions, concerns or complaints

If you have questions, concerns, complaints, or would like to exercise your rights, please contact us at:

Perimatics

C/O Nishant Velagapudi

13701 NE Bel Red Rd #103 Bellevue WA 98005

security@perimatics.com

(425) 298-0956

 

​

bottom of page